Be on the lookout for fake iTunes invoices, cybercriminals looking to infect Windows users

Windows users beware: cybercriminals are at it again and are trying to get you to download and install malware. The new trick is relying on forged iTunes invoices and IRS warnings and aims to get you to question the charges so that you'll infect your system with malware and they will get your banking details.

The scam is just about as elaborate as those fake Windows tech support calls are, so we'll try to explain it all. It begins with a fake Apple iTunes invoice being e-mailed to you. The invoice is for a Postcard and supposedly cost you $699.99. The links, if you dare to click them, will lead you to this weird IRS prompt:

If you see this and your system isn't completely patched up, the Blackhole Exploit kit will have you infected in no time. Should you decide to update your browser, you'll download a file called "upload.exe," which is the Zeus Trojan. The Zeus Trojan is a keylogger and aims to log your back credentials.

Be warned, stay fully patched, and never click on links in suspicious e-mails.